Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/323830303a3637303a3a2f33322d3332203d3e203532323830.roa
File:                     323830303a3637303a3a2f33322d3332203d3e203532323830.roa (raw, json)
Hash identifier:          IIQmN/x+wocKGfOczSd4773yu5gle/NafPpok1q1sBg=
Subject key identifier:   F5:4D:65:25:47:93:00:C7:C0:67:86:19:2D:88:60:53:65:D4:D0:08
Certificate issuer:       /CN=2152913C2D5333E6F48DA45B339F5C285841364B
Certificate serial:       5015046BE04CEA52F27445497664593BB209C300
Authority key identifier: 21:52:91:3C:2D:53:33:E6:F4:8D:A4:5B:33:9F:5C:28:58:41:36:4B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2152913C2D5333E6F48DA45B339F5C285841364B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/323830303a3637303a3a2f33322d3332203d3e203532323830.roa
Signing time:             Tue 04 Feb 2025 17:59:05 +0000
ROA not before:           Tue 04 Feb 2025 17:54:05 +0000
ROA not after:            Tue 03 Feb 2026 17:59:05 +0000
asID:                     52280
IP address blocks:        2800:670::/32 maxlen: 32
Validation:               Failed, certificate revoked on Fri 25 Jul 2025 13:25:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            50:15:04:6b:e0:4c:ea:52:f2:74:45:49:76:64:59:3b:b2:09:c3:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2152913C2D5333E6F48DA45B339F5C285841364B
        Validity
            Not Before: Feb  4 17:54:05 2025 GMT
            Not After : Feb  3 17:59:05 2026 GMT
        Subject: CN=F54D6525479300C7C06786192D88605365D4D008
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:27:67:50:3b:08:11:b5:4d:73:73:e9:14:bf:
                    6d:78:c9:22:67:c2:0d:e0:b1:e4:d9:27:19:83:5d:
                    98:24:d4:c1:f8:36:10:97:66:1e:6e:e6:49:e9:e3:
                    35:16:84:5e:dd:b5:c4:d2:f5:09:bb:3d:8a:da:65:
                    ef:51:5f:d1:39:30:4e:75:01:c0:8c:ef:d3:dd:f3:
                    b0:9c:a8:b1:75:52:6e:d6:ef:8e:b8:3d:46:29:70:
                    b3:dd:1d:96:8f:c2:48:6e:e3:47:f7:fb:0f:3b:f9:
                    c9:ee:da:a1:bc:fb:6f:8e:e4:a2:75:cc:76:6f:8b:
                    56:f6:f8:27:5d:a6:0b:89:f7:81:6b:df:d6:81:47:
                    09:96:8a:f1:66:d6:eb:db:0f:32:af:50:ed:07:78:
                    13:b7:5b:0e:54:6f:11:5e:49:5b:c0:33:42:9a:3e:
                    40:88:3d:a9:0e:1a:8c:f4:81:52:32:2f:e0:39:16:
                    38:53:8b:1c:32:1d:42:4d:61:dc:8c:aa:33:20:7c:
                    bd:7c:6d:38:27:7b:92:90:84:8b:cb:3d:af:83:1f:
                    69:66:36:d2:58:6a:9f:46:12:3a:85:34:7c:1d:30:
                    51:1a:e9:8e:19:f7:15:bb:63:36:2c:02:39:35:bf:
                    08:eb:08:ca:03:9c:b6:28:48:97:69:d4:5d:3f:11:
                    ee:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:4D:65:25:47:93:00:C7:C0:67:86:19:2D:88:60:53:65:D4:D0:08
            X509v3 Authority Key Identifier:
                keyid:21:52:91:3C:2D:53:33:E6:F4:8D:A4:5B:33:9F:5C:28:58:41:36:4B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/2152913C2D5333E6F48DA45B339F5C285841364B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2152913C2D5333E6F48DA45B339F5C285841364B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/323830303a3637303a3a2f33322d3332203d3e203532323830.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2800:670::/32

    Signature Algorithm: sha256WithRSAEncryption
         83:07:43:09:6c:0b:6f:2d:f1:98:06:26:fe:27:fb:9e:b4:55:
         84:b1:4a:17:d2:be:22:64:ce:8d:be:2a:4b:30:10:b9:a1:fc:
         59:a1:74:c5:b2:4b:35:e0:28:f7:ef:6f:23:ee:d6:d2:0f:a7:
         e7:ad:f3:90:d4:f9:be:f7:06:16:5d:ca:3b:5f:98:15:5c:ca:
         fc:7d:e0:01:8a:bd:b3:8b:d5:4e:ef:db:91:7c:3e:bf:78:e0:
         c2:e1:bd:7c:05:90:bb:fd:a1:28:53:7b:b0:2f:d5:7a:dc:1f:
         27:15:b3:e3:7b:80:f5:fe:b3:37:7a:91:6a:f2:26:23:f2:9e:
         e6:3b:0e:4b:cb:9e:74:d1:e2:0f:f5:ac:31:7a:da:63:23:f3:
         93:a9:52:36:58:29:65:dc:4a:a2:7d:06:7c:82:13:8f:63:3c:
         aa:a6:3b:c5:03:79:0f:68:00:76:60:c4:42:02:e9:27:c3:bb:
         91:12:6b:90:f2:5a:24:8f:1e:52:65:90:af:a1:da:14:68:4e:
         b4:39:05:a5:2c:60:f0:7e:ec:98:b8:76:13:d5:2b:61:86:48:
         a6:e2:10:48:f5:90:34:67:e7:0f:1d:5a:80:6a:10:23:c4:b3:
         4f:a4:82:d4:f2:43:40:a7:e6:dc:f3:c6:b1:e3:ce:40:ad:c2:
         e9:25:dd:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----